• Home
• io.codemodder
• core-codemods
• 0.96.0
• source code
• report.json

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

io.codemodder.codemods.UpgradeTempFileToNIOCodemod.report.json Maven / Gradle / Ivy

{
  "summary" : "Modernize and secure temp file creation",
  "change": "Modernize and secure temp file creation",
  "reviewGuidanceJustification" : "Unless the temporary files created by this code are intended to be read and edited by other applications on the system, and are intended to be in a predictable directory, this change should be merged. It's difficult to conceive of a situation where this would be by design and these changes would cause an issue.",
  "references" : [
    "https://cwe.mitre.org/data/definitions/378.html",
    "https://docs.fluidattacks.com/criteria/vulnerabilities/160/",
    "https://github.com/apache/druid/issues/11130",
    "https://owasp.org/www-community/vulnerabilities/Insecure_Temporary_File",
    "https://nvd.nist.gov/vuln/detail/CVE-2022-41954",
    "https://www.cvedetails.com/vulnerability-list/cwe-378/vulnerabilities.html"
  ]
}